Lucene search
+L

112 matches found

OpenVAS
OpenVAS
added 2022/09/08 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2022:3153-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.7AI score0.01891EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/12/05 12:0 a.m.15 views

Fedora: Security Advisory for vips (FEDORA-2021-b58af96f33)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.1CVSS6.5AI score0.0071EPSS
Exploits1References2
Fedora
Fedora
added 2020/12/09 1:23 a.m.25 views

[SECURITY] Fedora 32 Update: vips-8.8.4-5.fc32

VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...

5.3CVSS2.6AI score0.0198EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2020/04/16 8:55 p.m.5 views

Mozilla: Out of bounds write in GMPDecodeData when processing large images

The Mozilla Foundation Security Advisory describes this flaw as: On 32-bit builds, an out of bounds write could have occurred when processing an image larger than 4 GB in GMPDecodeData. It is possible that with enough effort this could have been exploited to run arbitrary code...

8.8CVSS7.4AI score0.01293EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/04/16 8:31 p.m.3 views

Mozilla: Out of bounds write in GMPDecodeData when processing large images

The Mozilla Foundation Security Advisory describes this flaw as: On 32-bit builds, an out of bounds write could have occurred when processing an image larger than 4 GB in GMPDecodeData. It is possible that with enough effort this could have been exploited to run arbitrary code...

8.8CVSS7.4AI score0.01293EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/04/16 10:8 a.m.5 views

Mozilla: Out of bounds write in GMPDecodeData when processing large images

The Mozilla Foundation Security Advisory describes this flaw as: On 32-bit builds, an out of bounds write could have occurred when processing an image larger than 4 GB in GMPDecodeData. It is possible that with enough effort this could have been exploited to run arbitrary code...

8.8CVSS7.4AI score0.01293EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/04/09 10:9 a.m.3 views

Mozilla: Out of bounds write in GMPDecodeData when processing large images

The Mozilla Foundation Security Advisory describes this flaw as: On 32-bit builds, an out of bounds write could have occurred when processing an image larger than 4 GB in GMPDecodeData. It is possible that with enough effort this could have been exploited to run arbitrary code...

8.8CVSS7.4AI score0.01293EPSS
Exploits0References5
Veracode
Veracode
added 2020/04/09 1:7 a.m.36 views

Denial Of Service (DoS)

Mozilla is vulnerable to denial of service DoS. The vulnerability exists through out of bounds write in GMPDecodeData when processing large images...

8.8CVSS3.2AI score0.01293EPSS
Exploits0References7Affected Software6
RedHat Linux
RedHat Linux
added 2020/04/08 4:30 p.m.5 views

Mozilla: Out of bounds write in GMPDecodeData when processing large images

The Mozilla Foundation Security Advisory describes this flaw as: On 32-bit builds, an out of bounds write could have occurred when processing an image larger than 4 GB in GMPDecodeData. It is possible that with enough effort this could have been exploited to run arbitrary code...

8.8CVSS7.4AI score0.01293EPSS
Exploits0References5
Hacker One
Hacker One
added 2019/03/04 12:10 p.m.61 views

Nextcloud: Uploading large avatar images cause excessive CPU usage

How to reproduce: - Create an account on any server running Nextcloud 13 or 14. - Open the personal settings. - Upload a large image as avatar tested with a 4032x3024 PNG image of about 14.5 MB. - Keep the selected area in the popup and save the avatar. - Notice that the avatar area shows the...

1.6AI score
Exploits0
Cvelist
Cvelist
added 2018/08/29 10:0 p.m.17 views

CVE-2018-16132

The image rendering component createGenericPreview of the Open Whisper Signal app through 2.29.0 for iOS fails to check for unreasonably large images before manipulating received images. This allows for a large image sent to a user to exhaust all available memory when the image is displayed,...

8.2AI score0.01085EPSS
Exploits0References1
Fedora
Fedora
added 2017/09/19 3:27 a.m.63 views

[SECURITY] Fedora 26 Update: vips-8.5.8-2.fc26

VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...

9.8CVSS2.6AI score0.13393EPSS
Exploits14
CNVD
CNVD
added 2017/08/21 12:0 a.m.6 views

GraphicsMagick 'ReadMNGImage' function invalid memory read vulnerability

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in the 'ReadMNGImage' function in the coders/png.c file in GraphicsMagick version 1.3.26, which stems from the program not...

8.8CVSS8.3AI score0.01875EPSS
Exploits0References1
OSV
OSV
added 2017/08/18 12:29 p.m.4 views

UBUNTU-CVE-2017-12935

The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c...

8.8CVSS6.8AI score0.01875EPSS
Exploits0References6
OSV
OSV
added 2016/02/15 6:26 p.m.3 views

USN-2898-2 eog vulnerability

It was discovered that Eye of GNOME incorrectly handled certain large images. If a user were tricked into opening a specially-crafted image, a remote attacker could use this issue to cause Eye of GNOME to crash, resulting in a denial of service, or possibly execute arbitrary code...

6.5CVSS7AI score0.04633EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2016/02/15 6:20 p.m.62 views

USN-2898-1: GTK+ vulnerability

It was discovered that GTK+ incorrectly handled certain large images. A remote attacker could use this issue to cause GTK+ applications to crash, resulting in a denial of service, or possibly execute arbitrary code...

6.5CVSS7AI score0.04633EPSS
Exploits0
Fedora
Fedora
added 2011/08/23 8:27 p.m.17 views

[SECURITY] Fedora 16 Update: vips-7.24.7-2.fc16

VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...

6.9CVSS2.6AI score0.00432EPSS
Exploits1
Fedora
Fedora
added 2011/08/23 4:33 a.m.36 views

[SECURITY] Fedora 14 Update: vips-7.24.7-2.fc14

VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...

6.9CVSS2.6AI score0.00432EPSS
Exploits1
Fedora
Fedora
added 2011/08/23 4:28 a.m.25 views

[SECURITY] Fedora 15 Update: vips-7.24.7-2.fc15

VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...

6.9CVSS2.6AI score0.00432EPSS
Exploits1
Fedora
Fedora
added 2011/08/23 4:28 a.m.16 views

[SECURITY] Fedora 15 Update: nip2-7.24.2-1.fc15

nip2 is a graphical front end to the VIPS package. With nip2, rather than directly editing images, you build relationships between objects in a spreadsheet-like fashion. When you make a change somewhere, nip2 recalculates the objects affected by that change. Since it is demand-driven this update ...

6.9CVSS1.4AI score0.00432EPSS
Exploits1
Rows per page
Query Builder